On Jun 2, 2008, at 11:17 PM, Doug Nordwall wrote:
> right, and my point is not that there is a problem with the
> compliance check that says "hey, you have two uid 0 accounts" (that
> one is quite correct in this regard) but rather when presented with
> 2 uid 0 accounts, it misassigns the owner of the file. In fact, it
> choses to view the ownership of the file as wrong, even through it
> is quite correct, even though it gets the info from the file _as a
> numeric uid_.
You're correct. We do the reverse lookup ourselves and this causes
problems in this particular case (much like a 'ls -l' on a file could
show it as belonging to root or to myroot, depending on how the local
OS performs its own lookups). I'll see if/how this can be improved in
a further revision of this plugin.
-- Renaud
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
